Description
This script is vulnerable to Lotus Notes Formula Injection.
Lotus Notes Formula Injection is a vulnerability that allows an attacker to alter Lotus Notes Formula statements by manipulating the user input. Lotus Notes Formula Injection occurs when web applications accept user input that is directly placed into the Evaluate function from LotusScript. Consult References for more information about this vulnerability.
Remediation
Your script should filter metacharacters from user input.
References
Related Vulnerabilities
WordPress Plugin Link Library 'searchll' Parameter SQL Injection (5.2.1)
WordPress Plugin Ad Inserter-Ad Manager & AdSense Ads Remote Code Execution (2.4.21)
WordPress Plugin Unlimited PopUps SQL Injection (4.5.3)
WordPress Plugin File Gallery Remote Code Execution (1.7.9)
WordPress Plugin WP Booking System Multiple Vulnerabilities (1.5.1)